We deeply appreciate any effort to discover and disclose security vulnerabilities responsibly.
For any security bug or issue with the RubyGems client or RubyGems.org service, please email [email protected] with details about the problem or submit a report using HackerOne.
For additional information about RubyGems security, please see https://rubygems.org/pages/security.